27 matches found
GHSA-389R-GV7P-R3RP vulnerabilities
Vulnerabilities for packages: gitlab-runner, kaniko, kargo, wolfictl, guac, melange, xeol, tfsec, flux-source-controller, pulumi-language-yaml, steampipe, trufflehog, src-fingerprint, terragrunt, act, grafana-alloy, gitea, kyverno, pulumi-language-dotnet, pulumi, argo-workflows, apko, zot,...
GHSA-389R-GV7P-R3RP vulnerabilities
Vulnerabilities for packages: terragrunt-fips, trivy-operator-fips, google-osconfig-agent, src-fingerprint-fips, trivy-operator, chainctl, kubescape-server-fips, snyk-cli, flux-fips, nemo, terragrunt, witness, act, xeol, syft, src-fingerprint, grafana-alloy, kubevela-fips, scorecard, coder-fips,...
CVE-2026-45022 vulnerabilities
Vulnerabilities for packages: terragrunt-fips, trivy-operator-fips, google-osconfig-agent, src-fingerprint-fips, trivy-operator, chainctl, kubescape-server-fips, snyk-cli, flux-fips, nemo, terragrunt, witness, act, xeol, syft, src-fingerprint, grafana-alloy, kubevela-fips, scorecard, coder-fips,...
CLEANSTART-2026-FO49462 Security fixes for ghsa-3xc5-wrhm-f963 applied in versions: 1.31.1-r0
Security vulnerability affects the pulumi-language-yaml package. This issue is resolved in later releases. See references for vulnerability details...
GHSA-HFVC-G4FC-PQHX vulnerabilities
Vulnerabilities for packages: migrate, cloud-provider-gcp-cloud-controller-manager, telegraf, cloud-provider-vsphere, kube-state-metrics, policy-controller, openfga, melange, kubernetes-csi-external-resizer, consul-k8s, helm-operator, rancher-agent, ratify, flux-source-controller, datadog-agent,...
CVE-2026-39883 vulnerabilities
Vulnerabilities for packages: kubernetes-csi-external-snapshotter-fips, crossplane-provider-azure-resources, fluent-operator-fips, aactl, crossplane-provider-terraform-fips, caddy, chainctl, kubescape-server-fips, azuredisk-csi, openfga-fips, spegel-fips, omni, flux-fips, amazon-cloudwatch-agent,...
CVE-2026-33762 vulnerabilities
Vulnerabilities for packages: trivy-operator-fips, google-osconfig-agent, src-fingerprint-fips, trivy-operator, chainctl, kubescape-server-fips, snyk-cli, flux-fips, nemo, livekit-cli, witness, flux-image-automation-controller-fips, xeol, syft, src-fingerprint, flux-source-controller-fips,...
CVE-2026-34165 vulnerabilities
Vulnerabilities for packages: trivy-operator-fips, google-osconfig-agent, src-fingerprint-fips, trivy-operator, chainctl, kubescape-server-fips, snyk-cli, flux-fips, nemo, livekit-cli, witness, flux-image-automation-controller-fips, xeol, syft, src-fingerprint, flux-source-controller-fips,...
GHSA-GM2X-2G9H-CCM8 vulnerabilities
Vulnerabilities for packages: trivy-operator-fips, google-osconfig-agent, src-fingerprint-fips, trivy-operator, chainctl, kubescape-server-fips, snyk-cli, flux-fips, nemo, livekit-cli, witness, flux-image-automation-controller-fips, xeol, syft, src-fingerprint, flux-source-controller-fips,...
CVE-2026-33762 vulnerabilities
Vulnerabilities for packages: gitlab-runner, kaniko, kargo, wolfictl, guac, melange, xeol, tfsec, flux-source-controller, pulumi-language-yaml, steampipe, trufflehog, src-fingerprint, grafana-alloy, gitea, kyverno, pulumi-language-dotnet, pulumi, argo-workflows, apko, zot, rancher-fleet, syft,...
GHSA-GM2X-2G9H-CCM8 vulnerabilities
Vulnerabilities for packages: gitlab-runner, kaniko, kargo, wolfictl, guac, melange, xeol, tfsec, flux-source-controller, pulumi-language-yaml, steampipe, trufflehog, src-fingerprint, grafana-alloy, gitea, kyverno, pulumi-language-dotnet, pulumi, argo-workflows, apko, zot, rancher-fleet, syft,...
GHSA-JHF3-XXHW-2WPP vulnerabilities
Vulnerabilities for packages: gitlab-runner, kaniko, kargo, wolfictl, guac, melange, xeol, tfsec, flux-source-controller, pulumi-language-yaml, steampipe, trufflehog, src-fingerprint, grafana-alloy, gitea, kyverno, pulumi-language-dotnet, pulumi, argo-workflows, apko, zot, rancher-fleet, syft,...
CVE-2026-34165 vulnerabilities
Vulnerabilities for packages: gitlab-runner, kaniko, kargo, wolfictl, guac, melange, xeol, tfsec, flux-source-controller, pulumi-language-yaml, steampipe, trufflehog, src-fingerprint, grafana-alloy, gitea, kyverno, pulumi-language-dotnet, pulumi, argo-workflows, apko, zot, rancher-fleet, syft,...
CVE-2026-27142 vulnerabilities
Vulnerabilities for packages: migrate, telegraf, tofu-controller, kube-state-metrics, spqr, volume-modifier-for-k8s, openfga, terragrunt, kubernetes-csi-external-resizer, rancher-agent, flux-source-controller, datadog-agent, terraform-provider-grafana, flux-notification-controller,...
GHSA-8FJ7-8H3W-XWFM vulnerabilities
Vulnerabilities for packages: telegraf, kube-vip, melange, datadog-agent, terraform-provider-grafana, caddy, crossplane-provider-aws-kinesis, grafana-alloy, pulumi-language-dotnet, nova, crossplane-provider-aws-eks, vertical-pod-autoscaler, sops, crossplane-provider-aws-elasticache,...
CVE-2026-27141 vulnerabilities
Vulnerabilities for packages: telegraf, kube-vip, melange, datadog-agent, terraform-provider-grafana, caddy, crossplane-provider-aws-kinesis, grafana-alloy, pulumi-language-dotnet, nova, crossplane-provider-aws-eks, vertical-pod-autoscaler, sops, crossplane-provider-aws-elasticache,...
CVE-2026-1229 vulnerabilities
Vulnerabilities for packages: policy-controller, melange, ratify, rclone, flux-source-controller, datadog-agent, flux-notification-controller, crossplane-provider-aws-kinesis, gitea, grafana-alloy, pulumi-language-dotnet, argo-workflows, gitness, extism, crossplane-provider-aws-eks, rancher-fleet...
GHSA-Q9HV-HPM4-HJ6X vulnerabilities
Vulnerabilities for packages: policy-controller, melange, ratify, rclone, flux-source-controller, datadog-agent, flux-notification-controller, crossplane-provider-aws-kinesis, gitea, grafana-alloy, pulumi-language-dotnet, argo-workflows, gitness, extism, crossplane-provider-aws-eks, rancher-fleet...
CVE-2026-1229 vulnerabilities
Vulnerabilities for packages: helm-diff, terragrunt-fips, aactl, crossplane-provider-azure-storage, trivy-operator-fips, terraform-provider-azuread, omni-fips, wal-g, terraform-provider-pagerduty, databricks-cli, src-fingerprint-fips, trivy-operator, chainctl, kubescape-server-fips,...
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: aactl, fuse-overlayfs-snapshotter, caddy, prometheus-postgres-exporter, nri-kubernetes, protoc-gen-go-grpc, nri-prometheus, cloud-sql-proxy-fips, haproxy-ingress, prometheus-alertmanager, trust-manager, syft, cass-operator, datadog-agent, cortex, pgpool2exporter-fips...